Cloud computing, search engines, and the services that underpin the internet are to be considered to be part of the UK’s vital infrastructure, alongside clean water and power, under new rules aimed at boosting cybersecurity. Under the European Union’s Network and Information Systems (NIS) directive, businesses that provide essential services will have to make sure their security is good enough to protect their network and information systems from attack, as well as having to notify the relevant authorities of serious incidents. [1]